🤖
Guides
  • Introduction
  • Beginners
    • Getting Started
  • Guides
    • SQLi Walkthrough
    • My First BoF
    • OSCP Buffer Overflow Guide (Windows)
    • Parrot OS customisation
    • Terminal Customisation
    • Video Guides
  • Cheat Sheets
    • Reverse Shells
    • Tunnelling, Pivoting and Proxies
    • SQL Injection
      • WAF Bypass
      • SQLMap
      • DBMS Cheatsheets
        • MSSQL
        • MySQL
        • Oracle
        • SQLite
        • PostgreSQL
      • References
    • Bash Cheat Sheets
      • Terminal
      • Find
      • Grep
      • Sed
      • Awk
      • Xargs
      • System
      • Download
      • Networking
      • Hardware
      • Variable
      • Math
      • Data Manipulation
      • Random
      • Time
      • Condition and Loop
      • Other
    • OSINT
    • Ping Sweeps
  • Methodologies
    • VOIP Checklist
    • OWASP v4 Checklist
    • External Inf
    • Internal Infrastructure
  • Linux
    • Checklist - Linux Priv Esc
  • Windows
    • Checklist - Windows Priv Esc
  • Things to do/look at
Powered by GitBook
On this page

Was this helpful?

  1. Cheat Sheets
  2. SQL Injection

References

  • Detect SQLi

    • Manual SQL Injection Discovery Tips

    • NetSPI SQL Injection Wiki

  • MySQL:

    • PentestMonkey's mySQL injection cheat sheet

    • Reiners mySQL injection Filter Evasion Cheatsheet

    • Alternative for Information_Schema.Tables in MySQL

    • The SQL Injection Knowledge base

  • MSSQL:

    • EvilSQL's Error/Union/Blind MSSQL Cheatsheet

    • PentestMonkey's MSSQL SQLi injection Cheat Sheet

  • ORACLE:

    • PentestMonkey's Oracle SQLi Cheatsheet

  • POSTGRESQL:

    • PentestMonkey's Postgres SQLi Cheatsheet

  • Others

    • SQLi Cheatsheet - NetSparker

    • Access SQLi Cheatsheet

    • PentestMonkey's Ingres SQL Injection Cheat Sheet

    • Pentestmonkey's DB2 SQL Injection Cheat Sheet

    • Pentestmonkey's Informix SQL Injection Cheat Sheet

    • SQLite3 Injection Cheat sheet

    • Ruby on Rails (Active Record) SQL Injection Guide

    • ForkBombers SQLMap Tamper Scripts Update

    • SQLi in INSERT worse than SELECT

    • Manual SQL Injection Tips

  • Second Order:

    • Analyzing CVE-2018-6376 – Joomla!, Second Order SQL Injection

    • Exploiting Second Order SQLi Flaws by using Burp & Custom Sqlmap Tamper

  • Sqlmap:

    • #SQLmap protip @zh4ck

PreviousPostgreSQLNextBash Cheat Sheets

Last updated 3 years ago

Was this helpful?